Lucene search
China National Vulnerability DatabaseCNVD-2021-100399HistoryDec 04, 2021 - 12:00 a.m.
Sunnet eHRD Insecure Deserialization Vulnerability
2021-12-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
sunnet ehrd
insecure deserialization
vulnerability
sun chat technology
taiwan
china
attackers
arbitrary code
email sending task scheduling
EPSS
0.003
Percentile
69.1%
Sunnet eHRD is a talent management system from Sun Chat Technology, Taiwan, China. The system supports talent management and performance management, etc. An insecure deserialization vulnerability exists in Sunnet eHRD, which stems from the inadequate input object validation and restriction of the serialization function of Sunnet eHRD’s email sending task scheduling, and can be exploited by attackers to execute arbitrary code.
Related
prion
prion
Input validation
2021-12-01 02:15:00
cvelist
cvelist
CVE-2021-43360 Sunnet eHRD - Insecure Deserialization
2021-12-01 02:00:25
cve
cve
CVE-2021-43360
2021-12-01 02:15:07
nvd
nvd
CVE-2021-43360
2021-12-01 02:15:07